bf3fcdba7148627abfed402d038c99d3b2e60cd87cd04fe22b6ea3aac5ac9151

Resubmissions

04-10-2022 09:59

221004-lz275saec6 8

26-09-2022 05:56

17-09-2022 08:02

06-09-2022 18:32

06-09-2022 18:14

Analysis

max time kernel
336995s
max time network
138s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
06-09-2022 18:32

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

bf3fcdba7148627abfed402d038c99d3b2e60cd87cd04fe22b6ea3aac5ac9151.apk
Size

4.1MB
MD5

cc551ea1e9bb262a25f25a2f15412905
SHA1

5856d942486d0ef997527591c7ae58b6d6a4bf07
SHA256

bf3fcdba7148627abfed402d038c99d3b2e60cd87cd04fe22b6ea3aac5ac9151
SHA512

8b511c9e9cfd784a0537027c738ae6d4c722f0358814b4fb8089c8302a07320e49990183fd5f6b9006e99e5c1622a17d5f7ef21613c7075761d3386e3cc44f62
SSDEEP

98304:Jeq7CtjZunGGO2mASwWX47tll0FCYHBjnDSY6vkyFmwnM/yd2ofrHS:5ytun3O2mAJRll0F/hLGkyFm//T

Score

8^/10

evasion

Malware Config

Signatures

Makes use of the framework's Accessibility service. 3 IoCs

description	ioc	Process
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfoByAccessibilityId	com.ohalqpdj.discopet
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfosByText	com.ohalqpdj.discopet
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfosByViewId	com.ohalqpdj.discopet

Requests disabling of battery optimizations (often used to enable hiding in the background). 1 IoCs

evasion

description	ioc	Process
Intent action	android.settings.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS	com.ohalqpdj.discopet

Removes a system notification. 1 IoCs

evasion

description	ioc	Process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	com.ohalqpdj.discopet

com.ohalqpdj.discopet
1⤵
- Makes use of the framework's Accessibility service.
- Requests disabling of battery optimizations (often used to enable hiding in the background).
- Removes a system notification.
PID:4102

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.ohalqpdj.discopet/app_webview/GPUCache/index

Filesize
20B

MD5
93027d42b314432c4216e6cfca48b384

SHA1
43448dd8102979c3926828182579691945eedd4e

SHA256
3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c

SHA512
a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/GPUCache/index-dir/temp-index

Filesize
48B

MD5
48445f1bc6f8a54bd4a16b65d6311092

SHA1
c59570c0d2e563cb5e2863d9579ddec5be27e93d

SHA256
7db79d4f48c40d46e3e09c36e8800298d713bbc480b6211d2c5119ee14726fcc

SHA512
a7f2947b23b8fedf90c89c1dacb666663811ff5e817f78ff0a379bc1761783b0df59cb3b795b4a2a1b532934a98cc4dad9b1ca65eb5153415836ebe71fc1cd12

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/GPUCache/index-dir/temp-index

Filesize
48B

MD5
7be989ecc917a4af99bdda2d5a4fc3a8

SHA1
0049ba68aa3f8c76ed56060235da24763f4ef851

SHA256
076d690383cb6576a98d093ef41e8451cca00ebd8a032fb8036f0c6c303ea088

SHA512
c2b272872eb1f40f187bce2792b0247e64424cf37c138feee625b7c8bc2729952b7a9c800f4bf61d9a56ff221669d9651d5983f84cd71bfa59a42183f8ab4f8f

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/Web Data

Filesize
104KB

MD5
dc79f9ce5f3ab5270b33e61119dfc959

SHA1
1844bf222a5144b513dcf2fb50a18c011701c647

SHA256
47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65

SHA512
18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/Web Data-journal

Filesize
1KB

MD5
aeb6739ac21f6604ea67c112010b273b

SHA1
f9ab3874bcf22c53ac827f80b4961d7172aecd63

SHA256
0476dfa4ab6f179790d95281a108e22464b004555d580abf4a436d2d647978f0

SHA512
591d8579eccdda317df5a6503ce8ad9a514a38bbcf5f58a3ef4b4e333093ffcdcc3df0992471bfaba33e57274fefd14c86f362a2f869b36bbd4fbcb851bc745d

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/metrics_guid

Filesize
36B

MD5
64f9d30184326a3c9d2a5d5f3c6b3d28

SHA1
16e857424928d5489b3e9f73ce7f62c92ad45e20

SHA256
bfb12882d4ded1f39083b4f67642de62b1e0bfe0ed35b6d01a51940ca934d0b1

SHA512
b19dd0d9596b50e2af227ef4983cb9369362fc972f175e5674e1470a7829c8a5ca360fd3b0202ca95ece8422d73adf2157f36d4981d2d31946c82ac9f67ccab2

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db

Filesize
28KB

MD5
c36d995306578d76c9cad69df15feded

SHA1
03bd144ae1aaf0b894ef76eebd82b66ecf67e1c6

SHA256
cc68fe30be68c1c174b2ab0a81415c8a82f5dce6614e5f52cc650cb29e150c98

SHA512
5079ed90d86184a41c1bb7b8780826e525fe644e85416d8c39cd0f13e20da3260b21a5a5999124de1f3ec5f53cd96505d52933cd366ada029ef56496cba26c25

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-journal

Filesize
524B

MD5
72f57c2e9932babc16f1d94007dbd217

SHA1
c96b0d104e131096294ef6fde5bd46ab68e1f1f4

SHA256
5d27b1c88a3651c9bc0991dccc78bc713fa392b77e0ebab3efa997a58cc90b60

SHA512
6a668f59d74554adee680a7a55784a73c32a6f04d2a39554b01f55f4a217ece90ebcd76e9f9c7882abc1b18dc69dcd86b68ddde4c4b44be3fbb7f58f3965103e

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
44KB

MD5
35b38ddf5de3befa37a6e4fd2f20872d

SHA1
069dd5c829a66daf98b905b45b3881f944800373

SHA256
de73dd40fd125bf6dfbc524eb5af25883e4006b30c3a3f821c13fe32aa9771c1

SHA512
d710d44693d36f6d7d8ef09b5937a6c19ee039a95de896340a2dcb7642b9f2b7ef7baefd8e21a11997551c1c4b7044a7e4d70d01f9cbefa51de346ce775315db

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
28KB

MD5
890e012213b51d020d7f747cec182bcf

SHA1
08eecc5ce47a758b9d19aa2e4de34bd452ad5e9e

SHA256
c9d3bf4260ef8b0a159eb8d53fbd9493d668ef94b6577208fc344cf7c908c7d1

SHA512
06b7bf0a77ef8a6260c1a6ebcc785804ace68580f01e68ff1719dec3b9e8b39f7b084e8eae4f5850fde7fa1803143f78989457a8bbb2ce6864fe42904bd02fb8

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
20KB

MD5
c19f42d89644262fdc75701ddea3cdf0

SHA1
cbc25e3c8f3d46532d887f12cce69d0b308036e9

SHA256
df0a158873da4a866e23026005a919bc253365049f2d5d6dcb948177662885af

SHA512
e941d1de396455142643ce9a60b2dcd148142f97d45263a831fc96c1b41bbebd608c36fb56adc3d53497046cc492b3935c841680a79d5a4a406d7849f298bb04

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
20KB

MD5
6857f4a6e7abb3e595cec4b2e0d22fd8

SHA1
ea950d5105d21c7805915ea2673da19ce3908cd3

SHA256
1c2cb13a43a87e064e89e24139dc304527da0f5036a3a9f16c33ed0e4451d70f

SHA512
8d2adfae96de64464de57496198997614770b22e725ec2b72414486e7ec7349845e51831fe90154b3724dc3b55b915ea0cf5d1039b045dd1931c7cdd76a83fcc

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
20KB

MD5
2dbcbfeeade6b3f312c72ae74ba0d0a3

SHA1
65e92f3f109574b1d3d6dd6579a693c130e419d6

SHA256
11a108a790fa4033266ad6e9c2129231e9b3cd9cbcf4cd7a710e6b858ac7d6ad

SHA512
389ee8076c557aa215a757b16e1919904d2fdf317c8e9f378a0b41942f2f2ace3480cb03f512f2ad27b74eee0b762001bc34e69cf3fa6017e6dba38757fea338

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
24KB

MD5
2e2b20f7e8f79eea7b644e7b8f5b9121

SHA1
7df95cb8f11f68df179336386404229d856a43ea

SHA256
3c633498eeb510423b3e2ed893a6d6286f64a1ec2189f4d4787674e595292c1b

SHA512
f2ace73c9161963d9011b6584de45cf47d773a4bba89fbc2c413ef9065e0483b43a74918c0e7d978ce43a24f8cca7fc214d97cb37edc14855536095337d283b4

Download Submit
/data/user/0/com.ohalqpdj.discopet/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
21223e9184445fe043476484cd8cb1f9

SHA1
2b4813f849121d60ba35eb0889080668bb62c778

SHA256
bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

SHA512
be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

Download Submit
/data/user/0/com.ohalqpdj.discopet/shared_prefs/preferences.xml

Filesize
152B

MD5
4bb7226b89691747e11ffce14558ea42

SHA1
ba0665b7ac892487b2606c6bbbf3c34c0df5b69f

SHA256
6d3c208c08e80ea38b8e56c8ab65c2abce6cca4638771a79d88c03e08936860e

SHA512
93f33e73abcbc2ce99b3c683c46c95538c813d50dbb4d71f78f43d42d5332771b636328ec3921748e5d9fefa713e855d9eae456facea78c5fdc0bea269f13286

Download Submit
/data/user/0/com.ohalqpdj.discopet/shared_prefs/preferences.xml

Filesize
398B

MD5
bd456d63633f0a757b7caab3236eb57f

SHA1
d111d94ca04a1db7e87f07118318bf23583af434

SHA256
c31ceca8e691b90af4198d97ff9cd65ddc6bdf303b70cfe69850752e91cf842c

SHA512
4bf41c75fcda50faf6f88dd92a2e31e585b188a4ea98f41060fef62a1830fd56c530685c87a6ab09024733223599f59fb0d90f187c118291c1046a2315ee33a8

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads